open port on Cisco 520 Pix to allow us to connect to an ouside dealer systems
Posted on 2006-04-19
I have our Cisco Pix 520, and I need to make a change to allow us to connect to an outside dealers system. I must preface I have little knowledge of programming cisco equipment I have learned by trial and error.
Here is the senario. An outside dealer supplied us with a cisco vpn client and a profile.pcf that uses udp to connect to their internet server 126.96.36.199. I can get connected to them just fine, but the next step of the process is that we installed on our workstations this emulator program that telnets to their unix box. Outside vendor sees us connected to the vpn but no activity is showing and I can not connect to their unix box, the connection times out. I receive an ip address when I connect to the vpn
He suggested that I open the firewall to allow 188.8.131.52
I am assuming inbound permit. They are using port 5051 TCP/IP and 4500 UDP.
How can I configure our pix to allow this
Am I on the right track here or not
access-list inbound permit tcp host 184.108.40.206 any eq 5150
access-list inbound permit udp host 220.127.116.11 any eq 4500
should I also permit outbound as well?
I have logged in to the pix
typed the above commands
but the changes do not appear when I do a sho config
I do not want to write to memory yet in case this does not work.
Any assistance would be appreciated.